Apache
Security Scorecard
Score
13F
Total CVEs
1,021
Patch Rate
13%
129 patched
Avg Response
521d
days to patch
Critical Gaps
20
exploitable, no detection
Severity Breakdown
Critical10
High58
Medium100
Low0
Patch Status
Patched129 (13%)
Partial/Workaround2 (0%)
Unpatched890 (87%)
CVEs (1,029)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-67638 | Jenkins Build Token Exposure | Medium | 4.3 | - | Patched |
| CVE-2025-67643 | Jenkins Redpen Pipeline Reporter for Jira Plugin Vulnerability | Medium | 4.3 | - | Patched |
| CVE-2025-62558 | Log4Shell Vulnerability | High | 7.8 | - | Patched |
| CVE-2025-65879 | Warehouse Management System Vulnerability | High | 8.1 | - | Patched |
| CVE-2025-55753 | Apache HTTP Server ACME Certificate Renewal Backoff Timer Overflow | High | 7.5 | - | Patched |
| CVE-2025-59775 | Apache HTTP Server SSRF Vulnerability | High | 7.5 | - | Patched |
| CVE-2025-66624 | BACnet Protocol Stack Library Vulnerability | High | 7.5 | - | Patched |
| CVE-2025-65082 | Apache HTTP Server Vulnerability | Medium | 6.5 | - | Patched |
| CVE-2025-66200 | Apache HTTP Server mod_userdir+suexec Bypass Vulnerability | Medium | 5.4 | - | Patched |
| CVE-2025-66516 | Apache Tika XXE Vulnerability | Critical | 9.8 | - | Patched |